Commusic Center
← Back to home

Privacy Policy

Last updated: April 2026

Data controller: Vibrazioninarmonia / Commusic Center privacy@commusicenter.com

1. Who we are

Commusic Center ("we", "us", "our") is a global platform for music creators operated by Vibrazioninarmonia. Our website is commusicenter.com. We are committed to protecting your personal data in accordance with the EU General Data Protection Regulation (GDPR — Regulation EU 2016/679) and all applicable privacy laws.

2. Data we collect

Account data

Name, email address, hashed password, profile photo, bio, location, musical genres and social links. Collected when you register.

Payment data

Billing name, address and VAT number. Card details are processed exclusively by Stripe and PayPal — we never store your card number.

Usage data

Pages visited, features used, device type, browser, IP address and session duration. Collected automatically.

Content data

Products, listings, posts, messages, booking requests and any other content you publish on the platform.

Communication data

Emails and support messages you send us. Push notification tokens if you grant permission.

3. How we use your data

PurposeLegal basis (GDPR)
Providing the platform and your accountContract performance (Art. 6.1.b)
Processing payments and payoutsContract performance (Art. 6.1.b)
Sending transactional emails (receipts, alerts)Contract performance (Art. 6.1.b)
Sending marketing / newsletter emailsConsent (Art. 6.1.a) — opt-in only
Push notificationsConsent (Art. 6.1.a) — opt-in only
Improving and personalising the platformLegitimate interest (Art. 6.1.f)
Security, fraud prevention, complianceLegal obligation (Art. 6.1.c) / Legitimate interest
Analytics and usage statisticsLegitimate interest (Art. 6.1.f)

4. Data sharing and third parties

We do not sell your personal data. We share it only with the following processors:

Supabase (USA/EU)Authentication and database hosting

Data Processing Agreement in place

Stripe (USA/EU)Payment processing

PCI-DSS compliant

PayPal (USA)Payment processing

Own privacy policy applies

Brevo (France)Transactional email delivery

EU-based, GDPR compliant

Vercel (USA)Website hosting and CDN

Standard Contractual Clauses (SCC)

CARTO / OpenStreetMapMap tiles on the directory page

No personal data transmitted

5. International data transfers

Some of our processors are based outside the EU (USA). These transfers are covered by Standard Contractual Clauses (SCC) approved by the European Commission, or by the EU–US Data Privacy Framework where applicable.

6. Data retention

  • Account data: retained for the lifetime of your account, then deleted within 30 days of account deletion.
  • Transaction records: retained for 10 years for fiscal and legal obligations.
  • Usage logs: retained for 12 months, then anonymised.
  • Marketing consent: retained until you withdraw consent.

7. Your rights (GDPR)

Under GDPR (Arts. 15–22) you have the right to:

Access

Request a copy of your personal data

Rectification

Correct inaccurate or incomplete data

Erasure

Request deletion — the "right to be forgotten"

Portability

Receive your data in a machine-readable format

Restriction

Limit how we process your data

Objection

Object to processing based on legitimate interest

Withdraw consent

At any time for consent-based processing

Complaint

Lodge a complaint with your national supervisory authority

To exercise any right, email privacy@commusicenter.com. We respond within 30 days. You may also lodge a complaint with the Italian Data Protection Authority (Garante): garanteprivacy.it.

8. Cookies

We use cookies and similar technologies. See our Cookie Policy for full details and how to manage your preferences.

9. Children

Commusic Center is not directed at children under 16. We do not knowingly collect data from anyone under 16. If you believe a child has provided us personal data, please contact us immediately and we will delete it.

10. Security

We implement industry-standard security measures: TLS encryption in transit, bcrypt-hashed passwords, row-level security on our database, and restricted administrative access. No system is 100% secure. In the event of a data breach we will notify you as required by GDPR (Art. 34).

11. Changes to this policy

We may update this Privacy Policy periodically. We will notify you of significant changes by email and/or a prominent notice on the platform. The "Last updated" date at the top reflects the latest revision.

12. Contact

Data controller: Vibrazioninarmonia / Commusic Center

Privacy email: privacy@commusicenter.com

General contact: vibrazioninarmonia@gmail.com

Cookie PolicyTerms of ServiceBack to Home